This attribute is used only for LDAPv2 clients that require attribute types to be returned with their RFC 1274 names. Set the value to on for those clients. The default is off.

2.3.1.86 nsslapd-rootdn (Manager DN)

This attribute sets the distinguished name (DN) of an entry that is not subject to access control restrictions, administrative limit restrictions for operations on the directory, or resource limits in general. There does not have to be an entry corresponding to this DN, and by default there is not an entry for this DN, thus values like cn=Directory Manager are acceptable.

For information on changing the root DN, see the "Creating Directory Entries" chapter in the HP-UX Directory Server administrator guide.

Parameter

Description

Entry DN

cn=config

Valid Values

Any valid distinguished name

Default Value

 

Syntax

DN

Example

nsslapd-rootdn: cn=Directory Manager

2.3.1.87 nsslapd-rootpw (Root password)

This attribute sets the password associated with the Manager DN. When the root password is provided, it is hashed according to the hashing method selected for the nsslapd-rootpwstorageschemeattribute. When viewed from the server console, this attribute shows the value *****. When viewed from the dse.ldif file, this attribute shows the hashing method followed by the hashed string of the password. The example shows the password as displayed in the dse.ldif file, not the actual password.

CAUTION:

When the root DN is configured at server setup, a root password is required. However, you can delete the root password from dse.ldif by directly editing the file. In this situation, the root DN obtains unauthenticated (anonymous) access only. When a root DN is configured for the database, always make sure that a root password is defined in dse.ldif. The pwdhash command-line utility can create a new root password. For more information, see “pwdhash (Prints encrypted passwords)”.

Parameter

Description

Entry DN

cn=config

Valid Values

Any valid password encrypted by any one of the encryption methods which are described

 

in “passwordStorageScheme (Password storage scheme)”.

Default Value

 

Syntax

DirectoryString {encryption_method }encrypted_Password

Example

nsslapd-rootpw: {SSHA}9Eko69APCJfF

56 Core server configuration reference

Page 56
Image 56
HP UX Identity Security Software manual Nsslapd-rootdn Manager DN, Nsslapd-rootpw Root password, Default Value Syntax